package filter;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

import model.User;

public class SystemFilter implements Filter {

	public void destroy() {

	}

	public void doFilter(ServletRequest arg0, ServletResponse arg1,
			FilterChain arg2) throws IOException, ServletException {
		HttpServletRequest request = (HttpServletRequest) arg0;
		HttpServletResponse response = (HttpServletResponse) arg1;
		String path = request.getServletPath();
		HttpSession session = request.getSession();
		User user = (User) session.getAttribute("user");
		if ("/DeptManagerServlet".equals(path)
				|| "/DeptDutyManagerServlet".equals(path)
				|| "/UserManagerServlet".equals(path)) {
			if (user != null) {
				String role = (session.getAttribute("role") + "");
				if ("1".equals(role)) {
					arg2.doFilter(arg0, arg1);
				} else {
					response.sendRedirect("admin/index.jsp");
				}
			} else {
				response.sendRedirect("login.jsp");
			}
		} else {
			if ("/System/UserManager.jsp".equals(path)
					|| "/System/DeptDutyManager.jsp".equals(path)
					|| "/System/DeptManager.jsp".equals(path)) {
				if (user != null) {
					String role = (session.getAttribute("role") + "");
					if ("1".equals(role)) {
						arg2.doFilter(arg0, arg1);
					} else {
						response.sendRedirect("../admin/index.jsp");
					}
				} else {
					response.sendRedirect("../login.jsp");
				}
			} else {
				arg2.doFilter(arg0, arg1);
			}
		}

	}

	public void init(FilterConfig arg0) throws ServletException {

	}

}
